This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS199524.roa File: AS199524.roa (raw, json) Hash identifier: wiJnKEHPZhLekui0YbC3Kbpx54hhyrL2IKlU49eMFQk= Subject key identifier: 41:15:53:4A:D3:A0:CE:E8:99:6B:47:38:89:77:78:05:FB:74:11:B9 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 6439585A81C70E140FAD23A4E8081440389C44E4 Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS199524.roa Signing time: Fri 12 Dec 2025 18:29:55 +0000 ROA not before: Fri 12 Dec 2025 18:24:55 +0000 ROA not after: Fri 11 Dec 2026 18:29:55 +0000 asID: 199524 IP address blocks: 82.25.36.0/24 maxlen: 24 82.39.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:39:58:5a:81:c7:0e:14:0f:ad:23:a4:e8:08:14:40:38:9c:44:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Dec 12 18:24:55 2025 GMT Not After : Dec 11 18:29:55 2026 GMT Subject: CN=4115534AD3A0CEE8996B473889777805FB7411B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:6e:57:8f:16:cc:94:a3:db:e4:69:29:33:e3: b1:88:f2:d0:bc:1d:b1:a8:af:34:12:81:72:98:f4: 8d:b7:73:70:b5:ac:53:f4:36:09:07:2a:3c:4b:c8: f7:5e:11:fb:5b:27:7c:83:f5:8d:44:7d:17:a8:ca: be:b1:00:9b:b4:49:19:de:04:c0:20:91:54:c7:a2: 51:47:54:69:a6:7a:d9:78:59:40:8c:6e:b8:82:16: 8a:05:a2:79:41:c3:7f:75:b3:42:10:03:cd:56:97: 9d:0c:70:96:34:f6:6b:82:83:36:02:7a:88:10:bc: 5f:af:2e:60:4c:42:b3:aa:03:66:01:0a:b4:e4:f1: 5a:2a:2a:6d:0a:35:63:79:f2:41:62:bc:42:12:7f: d6:0f:86:7e:ef:8f:af:81:61:75:7f:cd:51:ff:88: b7:3a:8a:a0:5d:d1:43:e3:40:90:81:26:4c:63:bd: c5:3e:c1:39:b7:c0:ad:96:bf:4a:12:19:db:6a:47: f2:7e:a6:f7:be:4a:d4:78:43:a7:68:3d:9c:d1:b8: 42:48:18:2d:7d:0c:8d:b2:d2:b0:fa:7c:33:5b:09: 7c:10:31:dd:48:de:de:99:05:95:13:90:7d:a7:27: 8b:72:43:31:0e:f4:04:f9:4e:fb:dc:50:ce:3e:af: 77:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:15:53:4A:D3:A0:CE:E8:99:6B:47:38:89:77:78:05:FB:74:11:B9 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS199524.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.25.36.0/24 82.39.187.0/24 Signature Algorithm: sha256WithRSAEncryption a9:f7:9e:cd:a5:de:82:d0:e8:93:c1:cf:77:6a:8b:da:0a:e7: 9a:ff:b9:35:25:e6:4b:db:ad:ce:8d:8a:09:34:a2:51:96:d9: ba:aa:c2:f2:ec:f8:b7:a6:f1:81:e8:ca:2d:a3:ba:02:72:a3: 02:1f:0a:8e:d2:66:e7:c3:a7:98:ac:fc:04:2a:d1:12:13:40: 02:77:23:c7:59:25:35:7c:0c:ee:b7:eb:fb:0a:ac:c4:70:38: 08:5f:2a:7c:7d:26:e8:40:a4:1f:38:df:6b:5d:04:d2:0f:49: dc:a3:5f:5f:87:3e:a0:3d:ae:66:8f:6b:25:89:be:dd:b2:9b: e3:1a:74:a0:16:e9:bc:47:b2:15:5b:e8:24:63:38:f0:22:b6: 05:25:f5:44:b0:b8:c7:71:38:80:49:64:d2:90:95:d2:20:ae: 17:c6:9f:ae:ac:d9:1c:ef:ca:82:6a:3a:eb:82:22:e6:05:55: 4b:d4:2c:bd:8b:18:e5:05:f0:b0:0f:81:06:63:34:fb:27:56: 24:72:c4:75:d3:42:51:0c:ee:94:bd:15:d9:78:6c:c2:cf:34: 91:19:0f:a6:ab:99:d1:d9:28:77:b5:34:43:68:e2:7a:0f:af: 36:a3:01:80:2b:87:b1:d1:ec:f3:c3:f6:27:67:1c:68:85:64: 7b:16:a0:af -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIUZDlYWoHHDhQPrSOk6AgUQDicROQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNTEyMTIxODI0NTVaFw0yNjEyMTExODI5NTVaMDMxMTAvBgNV BAMTKDQxMTU1MzRBRDNBMENFRTg5OTZCNDczODg5Nzc3ODA1RkI3NDExQjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCRblePFsyUo9vkaSkz47GI8tC8 HbGorzQSgXKY9I23c3C1rFP0NgkHKjxLyPdeEftbJ3yD9Y1EfReoyr6xAJu0SRne BMAgkVTHolFHVGmmetl4WUCMbriCFooFonlBw391s0IQA81Wl50McJY09muCgzYC eogQvF+vLmBMQrOqA2YBCrTk8VoqKm0KNWN58kFivEISf9YPhn7vj6+BYXV/zVH/ iLc6iqBd0UPjQJCBJkxjvcU+wTm3wK2Wv0oSGdtqR/J+pve+StR4Q6doPZzRuEJI GC19DI2y0rD6fDNbCXwQMd1I3t6ZBZUTkH2nJ4tyQzEO9AT5TvvcUM4+r3eBAgMB AAGjggIQMIICDDAdBgNVHQ4EFgQUQRVTStOgzuiZa0c4iXd4Bft0EbkwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTMTk5NTI0LnJvYTAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAUhkk AwQAUie7MA0GCSqGSIb3DQEBCwUAA4IBAQCp957Npd6C0OiTwc93aovaCuea/7k1 JeZL263OjYoJNKJRltm6qsLy7Pi3pvGB6Moto7oCcqMCHwqO0mbnw6eYrPwEKtES E0ACdyPHWSU1fAzut+v7CqzEcDgIXyp8fSboQKQfON9rXQTSD0nco19fhz6gPa5m j2slib7dspvjGnSgFum8R7IVW+gkYzjwIrYFJfVEsLjHcTiASWTSkJXSIK4Xxp+u rNkc78qCajrrgiLmBVVL1Cy9ixjlBfCwD4EGYzT7J1YkcsR100JRDO6UvRXZeGzC zzSRGQ+mq5nR2Sh3tTRDaOJ6D682owGAK4ex0ezzw/YnZxxohWR7FqCv -----END CERTIFICATE-----Generated at Fri Dec 19 15:41:56 2025 by rpki-client